TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 1b6c09a62e5f597a7b2d95042b39f0c39b1025e1 / . / tests / suites / test_suite_ccm.function
blob: 735c9aa283f3b284587e267e383c403f208505b7 [file] [log] [blame]
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +0200[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]2#include "mbedtls/ccm.h"
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +0200[diff] [blame]3/* END_HEADER */
4
5/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]6 * depends_on:MBEDTLS_CCM_C
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +0200[diff] [blame]7 * END_DEPENDENCIES
8 */
9
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]10/* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST:MBEDTLS_AES_C */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]11void mbedtls_ccm_self_test()
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +0200[diff] [blame]12{
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]13 TEST_ASSERT(mbedtls_ccm_self_test(1) == 0);
Manuel Pégourié-Gonnarda6916fa2014-05-02 15:17:29 +0200[diff] [blame]14}
15/* END_CASE */
Manuel Pégourié-Gonnard9fe0d132014-05-06 12:12:45 +0200[diff] [blame]16
17/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]18void mbedtls_ccm_setkey(int cipher_id, int key_size, int result)
Manuel Pégourié-Gonnard9fe0d132014-05-06 12:12:45 +0200[diff] [blame]19{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]20 mbedtls_ccm_context ctx;
Manuel Pégourié-Gonnard9fe0d132014-05-06 12:12:45 +0200[diff] [blame]21 unsigned char key[32];
22 int ret;
23
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]24 mbedtls_ccm_init(&ctx);
Manuel Pégourié-Gonnard6963ff02015-04-28 18:02:54 +0200[diff] [blame]25
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]26 memset(key, 0x2A, sizeof(key));
27 TEST_ASSERT((unsigned) key_size <= 8 * sizeof(key));
Manuel Pégourié-Gonnard9fe0d132014-05-06 12:12:45 +0200[diff] [blame]28
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]29 ret = mbedtls_ccm_setkey(&ctx, cipher_id, key, key_size);
30 TEST_ASSERT(ret == result);
Manuel Pégourié-Gonnard9fe0d132014-05-06 12:12:45 +0200[diff] [blame]31
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]32exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]33 mbedtls_ccm_free(&ctx);
Manuel Pégourié-Gonnard9fe0d132014-05-06 12:12:45 +0200[diff] [blame]34}
35/* END_CASE */
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]36
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]37/* BEGIN_CASE depends_on:MBEDTLS_AES_C */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]38void ccm_lengths(int msg_len, int iv_len, int add_len, int tag_len, int res)
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]39{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]40 mbedtls_ccm_context ctx;
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]41 unsigned char key[16];
42 unsigned char msg[10];
43 unsigned char iv[14];
Dave Rodgman2e680342020-10-15 14:00:40 +0100[diff] [blame]44 unsigned char *add = NULL;
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]45 unsigned char out[10];
46 unsigned char tag[18];
47 int decrypt_ret;
48
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]49 mbedtls_ccm_init(&ctx);
Manuel Pégourié-Gonnard6963ff02015-04-28 18:02:54 +0200[diff] [blame]50
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]51 ASSERT_ALLOC_WEAK(add, add_len);
52 memset(key, 0, sizeof(key));
53 memset(msg, 0, sizeof(msg));
54 memset(iv, 0, sizeof(iv));
55 memset(out, 0, sizeof(out));
56 memset(tag, 0, sizeof(tag));
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]57
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]58 TEST_ASSERT(mbedtls_ccm_setkey(&ctx, MBEDTLS_CIPHER_ID_AES,
59 key, 8 * sizeof(key)) == 0);
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]60
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]61 TEST_ASSERT(mbedtls_ccm_encrypt_and_tag(&ctx, msg_len, iv, iv_len, add, add_len,
62 msg, out, tag, tag_len) == res);
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]63
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]64 decrypt_ret = mbedtls_ccm_auth_decrypt(&ctx, msg_len, iv, iv_len, add, add_len,
65 msg, out, tag, tag_len);
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]66
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]67 if (res == 0) {
68 TEST_ASSERT(decrypt_ret == MBEDTLS_ERR_CCM_AUTH_FAILED);
69 } else {
70 TEST_ASSERT(decrypt_ret == res);
71 }
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]72
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]73exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]74 mbedtls_free(add);
75 mbedtls_ccm_free(&ctx);
Manuel Pégourié-Gonnard87df5ba2014-05-06 18:07:24 +0200[diff] [blame]76}
77/* END_CASE */
78
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]79/* BEGIN_CASE depends_on:MBEDTLS_AES_C */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]80void ccm_star_lengths(int msg_len, int iv_len, int add_len, int tag_len,
81 int res)
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]82{
83 mbedtls_ccm_context ctx;
84 unsigned char key[16];
85 unsigned char msg[10];
86 unsigned char iv[14];
87 unsigned char add[10];
88 unsigned char out[10];
89 unsigned char tag[18];
90 int decrypt_ret;
91
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]92 mbedtls_ccm_init(&ctx);
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]93
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]94 memset(key, 0, sizeof(key));
95 memset(msg, 0, sizeof(msg));
96 memset(iv, 0, sizeof(iv));
97 memset(add, 0, sizeof(add));
98 memset(out, 0, sizeof(out));
99 memset(tag, 0, sizeof(tag));
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]100
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]101 TEST_ASSERT(mbedtls_ccm_setkey(&ctx, MBEDTLS_CIPHER_ID_AES,
102 key, 8 * sizeof(key)) == 0);
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]103
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]104 TEST_ASSERT(mbedtls_ccm_star_encrypt_and_tag(&ctx, msg_len, iv, iv_len,
105 add, add_len, msg, out, tag, tag_len) == res);
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]106
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]107 decrypt_ret = mbedtls_ccm_star_auth_decrypt(&ctx, msg_len, iv, iv_len, add,
108 add_len, msg, out, tag, tag_len);
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]109
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]110 if (res == 0 && tag_len != 0) {
111 TEST_ASSERT(decrypt_ret == MBEDTLS_ERR_CCM_AUTH_FAILED);
112 } else {
113 TEST_ASSERT(decrypt_ret == res);
114 }
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]115
116exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]117 mbedtls_ccm_free(&ctx);
Janos Follath95ab93d2018-05-14 14:32:41 +0100[diff] [blame]118}
119/* END_CASE */
120
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]121/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]122void mbedtls_ccm_encrypt_and_tag(int cipher_id, data_t *key,
123 data_t *msg, data_t *iv,
124 data_t *add, data_t *result)
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]125{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]126 mbedtls_ccm_context ctx;
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]127 size_t tag_len;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]128 uint8_t *msg_n_tag = (uint8_t *) malloc(result->len + 2);
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]129
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]130 mbedtls_ccm_init(&ctx);
Manuel Pégourié-Gonnard6963ff02015-04-28 18:02:54 +0200[diff] [blame]131
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]132 memset(msg_n_tag, 0, result->len + 2);
133 memcpy(msg_n_tag, msg->x, msg->len);
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]134
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]135 tag_len = result->len - msg->len;
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]136
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]137 TEST_ASSERT(mbedtls_ccm_setkey(&ctx, cipher_id, key->x, key->len * 8) == 0);
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]138
Manuel Pégourié-Gonnard0f6b66d2014-05-07 14:43:46 +0200[diff] [blame]139 /* Test with input == output */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]140 TEST_ASSERT(mbedtls_ccm_encrypt_and_tag(&ctx, msg->len, iv->x, iv->len, add->x, add->len,
141 msg_n_tag, msg_n_tag, msg_n_tag + msg->len,
142 tag_len) == 0);
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]143
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]144 TEST_ASSERT(memcmp(msg_n_tag, result->x, result->len) == 0);
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]145
146 /* Check we didn't write past the end */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]147 TEST_ASSERT(msg_n_tag[result->len] == 0 && msg_n_tag[result->len + 1] == 0);
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]148
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]149exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]150 mbedtls_ccm_free(&ctx);
151 free(msg_n_tag);
Manuel Pégourié-Gonnard637eb3d2014-05-06 12:13:09 +0200[diff] [blame]152}
153/* END_CASE */
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]154
155/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]156void mbedtls_ccm_auth_decrypt(int cipher_id, data_t *key,
157 data_t *msg, data_t *iv,
158 data_t *add, int tag_len, int result,
159 data_t *expected_msg)
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]160{
Manuel Pégourié-Gonnard0f6b66d2014-05-07 14:43:46 +0200[diff] [blame]161 unsigned char tag[16];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]162 mbedtls_ccm_context ctx;
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]163
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]164 mbedtls_ccm_init(&ctx);
Manuel Pégourié-Gonnard6963ff02015-04-28 18:02:54 +0200[diff] [blame]165
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]166 memset(tag, 0x00, sizeof(tag));
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]167
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]168 msg->len -= tag_len;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]169 memcpy(tag, msg->x + msg->len, tag_len);
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]170
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]171 TEST_ASSERT(mbedtls_ccm_setkey(&ctx, cipher_id, key->x, key->len * 8) == 0);
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]172
Manuel Pégourié-Gonnard0f6b66d2014-05-07 14:43:46 +0200[diff] [blame]173 /* Test with input == output */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]174 TEST_ASSERT(mbedtls_ccm_auth_decrypt(&ctx, msg->len, iv->x, iv->len, add->x, add->len,
175 msg->x, msg->x, msg->x + msg->len, tag_len) == result);
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]176
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]177 if (result == 0) {
178 TEST_ASSERT(memcmp(msg->x, expected_msg->x, expected_msg->len) == 0);
179 } else {
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]180 size_t i;
181
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]182 for (i = 0; i < msg->len; i++) {
183 TEST_ASSERT(msg->x[i] == 0);
184 }
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]185 }
186
Manuel Pégourié-Gonnard0f6b66d2014-05-07 14:43:46 +0200[diff] [blame]187 /* Check we didn't write past the end (where the original tag is) */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]188 TEST_ASSERT(memcmp(msg->x + msg->len, tag, tag_len) == 0);
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]189
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]190exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]191 mbedtls_ccm_free(&ctx);
Manuel Pégourié-Gonnardce77d552014-05-06 18:06:52 +0200[diff] [blame]192}
193/* END_CASE */
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]194
195/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]196void mbedtls_ccm_star_encrypt_and_tag(int cipher_id,
197 data_t *key, data_t *msg,
198 data_t *source_address, data_t *frame_counter,
199 int sec_level, data_t *add,
200 data_t *expected_result, int output_ret)
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]201{
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]202 unsigned char iv[13];
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]203 unsigned char result[50];
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]204 mbedtls_ccm_context ctx;
Gilles Peskineb168c0d2021-02-09 12:00:13 +0100[diff] [blame]205 size_t iv_len, tag_len;
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]206 int ret;
207
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]208 mbedtls_ccm_init(&ctx);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]209
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]210 memset(result, 0x00, sizeof(result));
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]211
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]212 if (sec_level % 4 == 0) {
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]213 tag_len = 0;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]214 } else {
215 tag_len = 1 << (sec_level % 4 + 1);
216 }
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]217
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]218 TEST_ASSERT(source_address->len == 8);
219 TEST_ASSERT(frame_counter->len == 4);
220 memcpy(iv, source_address->x, source_address->len);
221 memcpy(iv + source_address->len, frame_counter->x, frame_counter->len);
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]222 iv[source_address->len + frame_counter->len] = sec_level;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]223 iv_len = sizeof(iv);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]224
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]225 TEST_ASSERT(mbedtls_ccm_setkey(&ctx, cipher_id,
226 key->x, key->len * 8) == 0);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]227
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]228 ret = mbedtls_ccm_star_encrypt_and_tag(&ctx, msg->len, iv, iv_len,
229 add->x, add->len, msg->x,
230 result, result + msg->len, tag_len);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]231
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]232 TEST_ASSERT(ret == output_ret);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]233
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]234 TEST_ASSERT(memcmp(result,
235 expected_result->x, expected_result->len) == 0);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]236
237 /* Check we didn't write past the end */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]238 TEST_ASSERT(result[expected_result->len] == 0 &&
239 result[expected_result->len + 1] == 0);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]240
241exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]242 mbedtls_ccm_free(&ctx);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]243}
244/* END_CASE */
245
246/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]247void mbedtls_ccm_star_auth_decrypt(int cipher_id,
248 data_t *key, data_t *msg,
249 data_t *source_address, data_t *frame_counter,
250 int sec_level, data_t *add,
251 data_t *expected_result, int output_ret)
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]252{
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]253 unsigned char iv[13];
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]254 unsigned char result[50];
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]255 mbedtls_ccm_context ctx;
Gilles Peskineb168c0d2021-02-09 12:00:13 +0100[diff] [blame]256 size_t iv_len, tag_len;
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]257 int ret;
258
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]259 mbedtls_ccm_init(&ctx);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]260
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]261 memset(iv, 0x00, sizeof(iv));
262 memset(result, '+', sizeof(result));
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]263
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]264 if (sec_level % 4 == 0) {
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]265 tag_len = 0;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]266 } else {
267 tag_len = 1 << (sec_level % 4 + 1);
268 }
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]269
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]270 TEST_ASSERT(source_address->len == 8);
271 TEST_ASSERT(frame_counter->len == 4);
272 memcpy(iv, source_address->x, source_address->len);
273 memcpy(iv + source_address->len, frame_counter->x, frame_counter->len);
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]274 iv[source_address->len + frame_counter->len] = sec_level;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]275 iv_len = sizeof(iv);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]276
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]277 TEST_ASSERT(mbedtls_ccm_setkey(&ctx, cipher_id, key->x, key->len * 8) == 0);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]278
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]279 ret = mbedtls_ccm_star_auth_decrypt(&ctx, msg->len - tag_len, iv, iv_len,
280 add->x, add->len, msg->x, result,
281 msg->x + msg->len - tag_len, tag_len);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]282
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]283 TEST_ASSERT(ret == output_ret);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]284
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]285 TEST_ASSERT(memcmp(result, expected_result->x,
286 expected_result->len) == 0);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]287
288 /* Check we didn't write past the end (where the original tag is) */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]289 TEST_ASSERT((msg->len + 2) <= sizeof(result));
290 TEST_EQUAL(result[msg->len], '+');
291 TEST_EQUAL(result[msg->len + 1], '+');
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]292
293exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]294 mbedtls_ccm_free(&ctx);
Darryl Green0daf4ca2018-05-29 14:12:26 +0100[diff] [blame]295}
296/* END_CASE */
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]297
298/* BEGIN_CASE depends_on:MBEDTLS_CHECK_PARAMS:!MBEDTLS_PARAM_FAILED_ALT */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]299void ccm_invalid_param()
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]300{
301 struct mbedtls_ccm_context ctx;
302 unsigned char valid_buffer[] = { 0x01, 0x02, 0x03, 0x04, 0x05, 0x06 };
303 mbedtls_cipher_id_t valid_cipher = MBEDTLS_CIPHER_ID_AES;
304 int valid_len = sizeof(valid_buffer);
305 int valid_bitlen = valid_len * 8;
306
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]307 mbedtls_ccm_init(&ctx);
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]308
309 /* mbedtls_ccm_init() */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]310 TEST_INVALID_PARAM(mbedtls_ccm_init(NULL));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]311
312 /* mbedtls_ccm_setkey() */
313 TEST_INVALID_PARAM_RET(
314 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]315 mbedtls_ccm_setkey(NULL, valid_cipher, valid_buffer, valid_bitlen));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]316 TEST_INVALID_PARAM_RET(
317 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]318 mbedtls_ccm_setkey(&ctx, valid_cipher, NULL, valid_bitlen));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]319
320 /* mbedtls_ccm_encrypt_and_tag() */
321 TEST_INVALID_PARAM_RET(
322 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]323 mbedtls_ccm_encrypt_and_tag(NULL, valid_len,
324 valid_buffer, valid_len,
325 valid_buffer, valid_len,
326 valid_buffer, valid_buffer,
327 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]328 TEST_INVALID_PARAM_RET(
329 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]330 mbedtls_ccm_encrypt_and_tag(&ctx, valid_len,
331 NULL, valid_len,
332 valid_buffer, valid_len,
333 valid_buffer, valid_buffer,
334 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]335 TEST_INVALID_PARAM_RET(
336 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]337 mbedtls_ccm_encrypt_and_tag(&ctx, valid_len,
338 valid_buffer, valid_len,
339 NULL, valid_len,
340 valid_buffer, valid_buffer,
341 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]342 TEST_INVALID_PARAM_RET(
343 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]344 mbedtls_ccm_encrypt_and_tag(&ctx, valid_len,
345 valid_buffer, valid_len,
346 valid_buffer, valid_len,
347 NULL, valid_buffer,
348 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]349 TEST_INVALID_PARAM_RET(
350 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]351 mbedtls_ccm_encrypt_and_tag(&ctx, valid_len,
352 valid_buffer, valid_len,
353 valid_buffer, valid_len,
354 valid_buffer, NULL,
355 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]356 TEST_INVALID_PARAM_RET(
357 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]358 mbedtls_ccm_encrypt_and_tag(&ctx, valid_len,
359 valid_buffer, valid_len,
360 valid_buffer, valid_len,
361 valid_buffer, valid_buffer,
362 NULL, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]363
364 /* mbedtls_ccm_star_encrypt_and_tag() */
365 TEST_INVALID_PARAM_RET(
366 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]367 mbedtls_ccm_star_encrypt_and_tag(NULL, valid_len,
368 valid_buffer, valid_len,
369 valid_buffer, valid_len,
370 valid_buffer, valid_buffer,
371 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]372 TEST_INVALID_PARAM_RET(
373 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]374 mbedtls_ccm_star_encrypt_and_tag(&ctx, valid_len,
375 NULL, valid_len,
376 valid_buffer, valid_len,
377 valid_buffer, valid_buffer,
378 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]379 TEST_INVALID_PARAM_RET(
380 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]381 mbedtls_ccm_star_encrypt_and_tag(&ctx, valid_len,
382 valid_buffer, valid_len,
383 NULL, valid_len,
384 valid_buffer, valid_buffer,
385 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]386 TEST_INVALID_PARAM_RET(
387 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]388 mbedtls_ccm_star_encrypt_and_tag(&ctx, valid_len,
389 valid_buffer, valid_len,
390 valid_buffer, valid_len,
391 NULL, valid_buffer,
392 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]393 TEST_INVALID_PARAM_RET(
394 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]395 mbedtls_ccm_star_encrypt_and_tag(&ctx, valid_len,
396 valid_buffer, valid_len,
397 valid_buffer, valid_len,
398 valid_buffer, NULL,
399 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]400 TEST_INVALID_PARAM_RET(
401 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]402 mbedtls_ccm_star_encrypt_and_tag(&ctx, valid_len,
403 valid_buffer, valid_len,
404 valid_buffer, valid_len,
405 valid_buffer, valid_buffer,
406 NULL, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]407
408 /* mbedtls_ccm_auth_decrypt() */
409 TEST_INVALID_PARAM_RET(
410 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]411 mbedtls_ccm_auth_decrypt(NULL, valid_len,
412 valid_buffer, valid_len,
413 valid_buffer, valid_len,
414 valid_buffer, valid_buffer,
415 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]416 TEST_INVALID_PARAM_RET(
417 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]418 mbedtls_ccm_auth_decrypt(&ctx, valid_len,
419 NULL, valid_len,
420 valid_buffer, valid_len,
421 valid_buffer, valid_buffer,
422 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]423 TEST_INVALID_PARAM_RET(
424 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]425 mbedtls_ccm_auth_decrypt(&ctx, valid_len,
426 valid_buffer, valid_len,
427 NULL, valid_len,
428 valid_buffer, valid_buffer,
429 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]430 TEST_INVALID_PARAM_RET(
431 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]432 mbedtls_ccm_auth_decrypt(&ctx, valid_len,
433 valid_buffer, valid_len,
434 valid_buffer, valid_len,
435 NULL, valid_buffer,
436 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]437 TEST_INVALID_PARAM_RET(
438 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]439 mbedtls_ccm_auth_decrypt(&ctx, valid_len,
440 valid_buffer, valid_len,
441 valid_buffer, valid_len,
442 valid_buffer, NULL,
443 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]444 TEST_INVALID_PARAM_RET(
445 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]446 mbedtls_ccm_auth_decrypt(&ctx, valid_len,
447 valid_buffer, valid_len,
448 valid_buffer, valid_len,
449 valid_buffer, valid_buffer,
450 NULL, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]451
452 /* mbedtls_ccm_star_auth_decrypt() */
453 TEST_INVALID_PARAM_RET(
454 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]455 mbedtls_ccm_star_auth_decrypt(NULL, valid_len,
456 valid_buffer, valid_len,
457 valid_buffer, valid_len,
458 valid_buffer, valid_buffer,
459 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]460 TEST_INVALID_PARAM_RET(
461 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]462 mbedtls_ccm_star_auth_decrypt(&ctx, valid_len,
463 NULL, valid_len,
464 valid_buffer, valid_len,
465 valid_buffer, valid_buffer,
466 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]467 TEST_INVALID_PARAM_RET(
468 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]469 mbedtls_ccm_star_auth_decrypt(&ctx, valid_len,
470 valid_buffer, valid_len,
471 NULL, valid_len,
472 valid_buffer, valid_buffer,
473 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]474 TEST_INVALID_PARAM_RET(
475 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]476 mbedtls_ccm_star_auth_decrypt(&ctx, valid_len,
477 valid_buffer, valid_len,
478 valid_buffer, valid_len,
479 NULL, valid_buffer,
480 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]481 TEST_INVALID_PARAM_RET(
482 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]483 mbedtls_ccm_star_auth_decrypt(&ctx, valid_len,
484 valid_buffer, valid_len,
485 valid_buffer, valid_len,
486 valid_buffer, NULL,
487 valid_buffer, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]488 TEST_INVALID_PARAM_RET(
489 MBEDTLS_ERR_CCM_BAD_INPUT,
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]490 mbedtls_ccm_star_auth_decrypt(&ctx, valid_len,
491 valid_buffer, valid_len,
492 valid_buffer, valid_len,
493 valid_buffer, valid_buffer,
494 NULL, valid_len));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]495
496exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]497 mbedtls_ccm_free(&ctx);
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]498 return;
499}
500/* END_CASE */
501
502/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]503void ccm_valid_param()
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]504{
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame^]505 TEST_VALID_PARAM(mbedtls_ccm_free(NULL));
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]506exit:
507 return;
508}
509/* END_CASE */